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(54) System and method for securely storing electronic data 



(57) A.system and method for securely storing data 
provides for storing, managing, and updating an owner's 
secret data and for accessing the stored data by a trust- 
ed third party upon the occurrence of an event, such as 
the death of the owner. The system and method makes 
use of application software, such as a virtual wallet run- 
ning at least in part on the sender of a trusted third party 
and with a virtual executor function and a virtual archivist 



function. The virtual executor function automatically es- 
crows a trusted third party's access aspect of the own- 
er's secret device for accessing the stored data Upon 
verification of the occurrence of the event, the virtual ex- 
ecutor provides access to the stored data using the 
trusted third party's access aspect. The virtual archivist 
function automatically updates technologies related to 
the stored data. 
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Description 

Cross Reference to Related Applications 

[0001] This application claims the benefit of U.S. Pro- s 
visional Patent Application Serial No. 60/081,748 filed 
April 14, 1998; co-pending U.S. Utility Patent Applica- 
tion Serial No. 09/190,993 filed November 12. 1998, U. 
S. Utility Patent /^plication entitled "System and Meth- 
od for Controlling Transmission of Stored Information to 

Internet Websites," Serial No. filed 

, and U.S. Utility Patent Application 

entitled "Digital Graphic Signature System." Serial No. 

filed_^ , which are 

incorporated herein by reference. 

Field of the Invention 

[0002] This invention relates generally to storage of 
electronic data, and more particularly to a system and 
method for securely storing, managing and updating an 
owner's data and accessing the stored data by a trusted 
party upon the occurrence of an event, such as the 
death of the owner. 

Background of the Invention 

[0003] /Vn electronic or virtual wallet is an embodiment 
of software acting as a container for electronic objects, 
such as payment mechanisms. Identity authentication 
mechanisms, personal information and electronic arti- 
facts of the owner. The electronic or virtual wallet can 
reside, for example, on one or more of a consumer's 
personal computer (PC), a server, and a smart card. The 
virtual wallet allows the owner to control access to and 
distribution of information in the wallet, thereby giving 
the owner security and total control over the owner's 
personal information. Further, the virtual wallet provides 
mechanisms that eliminate the risk of loss of the infor- 
mation in the wallet, for example, by remotely storing 
and/or disabling the wallet contents. Thus, the virtual 
wallet is a trusted place to keep information and valuable 
financial items, as well as a convenient way to move in- 
formation around. 

[0004] Currently, many electronic wallets focus on 
payment mechanisms. However, electronic wallets can 
also be used to maintain, for example, identification in- 
formation, authentication information, certificates, ac- 
cess keys, personal identification numbers (PIN's). and 
credit card, debit card and bank account information, as 
well as all other types of personal information of the own- 
er, such as the owner's will. For a detailed discussion of 
a virtual or electronic wallet, see, for example, currently 
co-pending Provisional Patent Application Serial No. 
60/081.748 filed on April 14, 1998 and Utility Patent Ap- 
plication Serial No. 09/190.993 filed on November 12, 
1998, incorporated herein by reference. Information 
stored in an electronic wallet can be transmitted and re- 



ceived by the owner of the electronic wallet, for example, 
through the Internet or other types of networks. 
[0005] Typically, a local aspect of the virtual wallet re- 
sides on the owner's personal computer (PC) and in- 
cludes a certificate or other similar authentication instru- 
ment that allows the owner to remotely gain access to 
the entire virtual wallet which resides, for example, on 
a server. The local aspect of the virtual wallet updates 
the remote aspect ot the virtual wallet with the latest in- 
formation from the local aspect when the local wallet is 
on-line. The server also affords greater storage capacity 
for the owner's information than, for example, the own- 
er's PC. Thus, the owner is able to define and have ac- 
cess to all the wallet functionality at sites where the local 
aspect of the wallet can be linked to the server, while 
the remote aspect of the wallet provides security for all 
of the Information stored in the wallet. 
[0006] However, the certificate or other similar au- 
thentication mechanism, such as a special PIN, pass- 
word or key that allows the owner to gain access to the 
owner's electronic data securely stored in the virtual 
wallet may typically be known only to the owner There- 
fore, upon the occurrence of an event, such as the death 
of the owner, which makes it impossible for the owner 
to act, if no other person knows how to access the stored 
infonnation, it may be locked up forever 

Sumnnary of the Invention 

[0007] It is a feature and advantage of the present in- 
ventk5n to provide a system and method for securely up- 
dating and managing an owner's electronic data stored 
in the owner's virtual wallet. 

[0008] It is another feature and advantage of the 
present invention to provide a system and method for 
updating technologies associated with the owner's data 
stored in the owner's virtual wallet when such technol- 
ogies become outdated. 

[0009] It is an additional feature and advantage of the 
present invention to provide a system and method for 
accessing the owner's data stored in the owner's virtual 
wallet upon the occurrence of an event, such as the 
death of the owner 

[0010] It is a further feature and advantage of the 
present invention to provide a system and method for 
making the contents of the owner's virtual wallet avail- 
able to the owner's estate upon the death of the owner 
[0011] To achieve the stated and otTfer features, ad- 
vantages and objects of the present invention, an em- 
bodiment of the present invention provides a system 
and method for securely storing, managing and updat- 
ing an owner's secret data and accessing the stored da- 
ta by a trusted third party upon the occurrence of an 
event, such as the death of the owner /Vn embodiment 
of the present invention makes use of application soft- 
ware, such as a virtual wallet application running, for ex- 
ample, at least in part on the owner's personal computer 
and at least in part on a wallet server of a trusted third 
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party, sudh as a bank or similar financial institution. The 
virtual wallet application also includes, for example, a 
virtual executor function and a virtual archivist function. 
[0012] In an embodiment of the present invention, da- 
ta is stored for the owner by the owner entering the data s 
on the virtual wallet application at a terminal, such as 
the owner's personal computer, which is coupled to the 
wallet server over a network, or by receiving the data 
from another party, such as a merchant, lawyer, or the 
like, for the owner, by an electronic transmission, such 
as an electronic mail message. The network can be a 
private network or a public network, such as the internet. 
The types of secret information entered by the owner 
and stored for the owner by the virtual wallet application 
includes, tor example, kiartification informatton, au- 
thentication ffiformation. certificate tnkxmatkm, access 
key information, PIN number iratormation. credit card ac- 
count informaUon, debtt card intomwtion, bank account 
information, ancVor other personf!! mtermation, such as 
will information, legal dociimenli. Jw»»afice poHcies. 
brokerage account ntemwlion. . *|ptt ir^st^u- 
ments, digital stock certHicatea, and.^tfprt'bond certifi- 
cates. 

[0013] An embodiment of the present irwente* »- 
volves establishing the virtual wallet for the owner for 
various payment functbns, as well as for storing the 
owner's secret data. The virtual wallet application auto- 
matically assigns the owner a secret devbe, such as a 
password, secret key, PIN number, or the like, for ac- 
cess by the owner to the stored data, and automatically 
sends information about the secret device to the owner, 
for example, at the owner's terminal or PC coupled to 
the wallet sender over the network. The owner's secret 
access device has, for example, two flavors" or as- 
pects, namely the owner's access aspect and the trust- 
ed third party's access aspect. The owner's access as- 
pect is automatically sent to the owner, and the trusted 
third party's access aspect is automatically stored by the 
virtual executor function of the virtual wallet application. 
[001 4] In an embodiment of the present inventbn. the ^ 
third party's access aspect of the secret device is auto- 
matically escrowed by the virtual executor function of 
the virtual wallet applicatbn conditioned on the occur- 
rence of an event affecting the owner, which makes it 
impossible for the owner to act. such as the death or ^5 
incompetence of the owner. Other secret access infor- 
mation is likewise automatically escrowed for the owner 
by the virtual executor function of the virtual wallet ap- 
plication, such as identification information, authentica- 
tion information, certificate information, access key in- 50 
formation, PIN number information, and password infor- 
mation of the owner. Likewise, various decryption infra- 
structure is also automatically escrowed for the owner 
by the virtual executor function, such as public key cryp- 
tography infrastructure, electronic document inf rastruc- 55 
ture. digital signature infrastructure, user name infra- 
structure, password infrastructure, fingerprint scanner 
infrastructure, and secret key infrastructure of the own- 



er. 

[001 5] In an embodiment of the pfOaonl InVOOtiCA, up- 
on-iha occurrence of the event, auct) a| tflO Cld«th or 
incornpetence of the owner, the pwo^r** pofBOnf^l (P»p-. 
resenVwe, such as the executor ^ tfUQlaQ ol th« OW- 
er's estate', oresents appropriate doQum0ntatlO|n to the 
trusted thirg pgrty necessary to verify tf^g oipcurronce of 
the event antfih^ representative's autlwtty to act- Ver- 
ification of thd octurrence of the event is eotered on the 
virtual executor?'inction of the owner's virtuill wallet ap- 
plicatbn. and the virtual executor function ^ilfarnatJoaiV 
provkJes access to'She oiji'ner's stored daU| iui|n[^ the 
escrowed informatk>n,i-5Migh^s the trusted third' padV!^, 
access aspect of the ow^^^^S secret key, 
[0016] An embodiment ci the ar^^ent inventlor^ al»Q 
includes the virtual archivist fpn.cScn oj^the owner*i y|r-. 
tual wallet, which automatrcalfy ipdat*^ *^e technology 
aspects of the stored data fronri^ine.to '.Iro, The tech- 
nology aspects updated by the vir^u^r arthi?!^* include, 
for example, technology relating to s{gniifig:a dfeciifnent, 
encryption/decryptk)n technology, techfiCrv.gy Veptgd to 
a key for signing a document. technolog/-.re^tiiri Jp^ 
reading a document itself, technology relat-^d^b trai.*^- 
lation utilities used to make the documents tfiOTS'elyesV 
aceesetole, and technotogy related to a certificate re^^o- 
c^ion fet. Other technology aspects updated by the vir- 
tual archivist include verification and validation technoi • 
ogy to ensure that keys, digital certificates, aruj notary 
stamps are valid as of the time stamp date associated 
with the documents themselves, 
[0017] Additional objects, advantages, and novel fea- 
tures of the invention will be set forth in part in the de- 
scription that follows, and in part will become more ap- 
parent to those skilled in the art upon examination of the 
following, or may be learned by practicing the invention. 

Brief Description of the Drawings 

[0018] 

Fig. 1 shows schematically an overview of key com- 
ponents, and the flow of information between the 
key components, for an embodiment of the present 
invention; 

Fig. 2 is a table which illustrates examples of the 
types of data which the owner stores in the owner's 
virtual wallet for an embodiment of the present in- 
vention; 

Fig. 3 is a table which shows examples of the types 
of information escrowed by the virtual executor for 
an embodiment of the present invention; 
Fig. 4 is a table which shows examples of the two 
"flavors' for the key for accessing the owner's virtual 
wallet for an embodiment of the present invention; 
Fig. 5 is a flow chart which amplifies the flow of in- 
formation shown in Fig. 1 and provides further detail 
regarding the process of escrowing and accessing 
the owner's stored data for an embodiment of the 
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present invention; and 

Fig. 6 is a table which shows examples of the types 
ol technologies which are updated by the virtual ar- 
chivist tor an enabodiment of the present invention. 

Detailed Description 

[001 9] Referring now in detail to an embodiment of the 
present invention, an example of which is illustrated in 
the accompanying drawings, the present invention pro- 
vides a system and method for securely storing, updat- 
ing and managing an owner's electronic data and ac- 
cessing the stored data by a trusted third party upon the 
occurrence of an event, such as the death or incompe- 
tence of the owner. Fig. 1 shows schematically an over- 
view of key components, and the flow of information be- 
tween the key components, for an embodiment of the 
present invention. The system for an embodiment of the 
present invention makes use of application software, 
such as a virtual wallet, which resides, for example, on 
one or both of the PC 2 of the owner 4 and a serwer 6 
of a financial institution 8, such as a bank. 
[0020] Fig. 2 Is a table which illustrates examples of 
the types of data which the owner stores in the owner's 
virtual wallet for an embodiment of the present inven- 
tion. Referring to Figs. 1 and 2. a local aspect 10 of the 
virtual wallet 1 2 residing on the owner's PC 2 allows the 
owner 4 to remotely gain access to the entire virtual wal- 
let 14, which resides on the wallet server 6, over a net- 
work 16, such as the Internet. The local aspect 10 up- 
dates the remote aspect 14 of the virtual wallet 12 with 
the latest information from the local aspect when the lo- 
cal wallet is on-line to the server 6. Types of information 
which may be stored for the owner 4 in the virtual wallet 
12 include, for example, identification information 18, 
authentication information 20, certificates 22. access 
keys 24. personal identification numbers (PIN's) 26, 
credit card account information 28. debit card informa- 
tion 30, bank account information 32. and other personal 
information 34, such as the owner's will, legal docu- 
ments, insurance policies, brokerage account Informa- 
tion, digital bearer instruments, digital stock certificates, 
and digital bond certificates. 

[0021] Referring further to Fig. 1 , a certificate or other 
similar authentication mechanism 36, such as a special 
PIN, password, or key. typically known only to the owner 
4, allows the owner to gain access to the owner's elec- 
tronic data securely stored in the virtual wallet 1 2. Gen- 
erally, all of the digital sen/ices that are related to elec- 
tronic* commerce, such as public key cryptography, elec- 
tronic documents, and digital signatures, rely on the per- 
son who holds the certificate or who owns the wallet be- 
ing present to access them. It can be as simple, for ex- 
ample, as a user name and password, if the owner 4 
actually keeps the owner's password private. On the 
other hand, it can be as complicated as a fingerprint 
scanner requiring a live thumbprint that has, for exam- 
ple a body temperature. When the owner 4 dies, access 
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to the owner's decryption infrastructure is likewise gone, 
and the access, in effect, dies with the owner. 
[0022] A functionality within the virtual wallet for an 
embodiment of the present invention provides a solution 
5 to the problem by maintaining a file with all of this critical 
information that can be opened by a trusted third party, 
such as the financial institution 8. e.g., a bank, upon the 
death of the owner 4. "mis allows for the settlement of 
all accounts and for access to information by the suc- 
10 cessors in interest of the owner 4. Referring again to 
Fig. 1. this aspect of an embodiment of the present in- 
vention, referred toas the virtual executor 38, allows ac- 
cess to the owner's secure electronic data stored in the 
electronic wallet 12 once the owner 4 is. for example, 
IS deceased or legally incompetent or otherwise incapable 
of conducting her own affairs. Thus, the virtual executor 
38 provides for the owner's secure infomnation to be 
passed on to the owner's successors in interest after the 
owner 4 is. for example, deceased, incompetent, or oth- 
20 erwise unable to act on the owner's own behalf. 

[0023] The virtual executor 38 functionality for an em- 
bodiment of the present invention provides a service 
that escrows the keys and/or similar access devices or 
mechanisms, so that when the owner 4 dies, the keys 
25 become part of the owner's estate and can be handled 
as part of the typical estate settlement. Fig. 3 is a table 
which shows examples of the types of infornrtatlon es- 
crowed by the virtual executor 38 for an embodiment of 
the present invention. The types of information es- 
30 crowed by the virtual executor 38 Include, for example. 
Identification infomnation 18, authentication infonnation 
20. certificates, 22. access keys 24. PIN numbers 26. 
passwords 40. and other similar secret access mecha- 
nisms 42. Without the virtual executor 38. all of the own- 
35 er's infomnation that is protected, for example, by au- 
thentication information 20. keys 24. special PIN's 26. 
or passwords 40 may be forever locked up with the un- 
availability of the owner 4 to act. who is typically the only 
one who knows how to access the infomnation stored in 
40 the virtual wallet 12. 

[0024] In an embodiment of the present invention, the 
owner's secret keys and/or other similar access devices 
are escrowed with the trusted third party which is. for 
example, the financial institution or bank 8, through the 
45 virtual executor 38. which Is a type of virtual tmst for the 
owner 4. The owner 4 escrows the owner's secret keys 
with the trusted third party 8, and the escrowed keys be- 
come part of the owner's estate. In other words, the es- 
crowed keys are similar to the owner's will and all the 
so other trusts that the owner 4 may have. For example, 
the owner 4 can also have electronic funds, such as 
stored value or digital coins, that require the owner's 
thumbprint to decrypt. Upon the occurrence of an event, 
such as the death or incompetence of the owner, the 
55 system and method for an embodiment of the present 
invention provides a way for the trusted third party 8 to 
obtain access to the value that is stored, for example, 
in those coins. 



4 



EP 0 950 972 A2 



8 



[0025] The system and method lor an embodiment of 
the present invention provides, for example, a technol- 
ogy infrastructure associated with the virtual wallet 12. 
for accessing the contents of the virtual wallet, such as 
the owner's stored value in the wallet. The technology 
infrastructure associated with the virtual wallet 12 pro- 
vides a key that is durable and has, for example, two 
"flavors." Fig. 4 is a table which shows examples of the 
two "flavors" for the key 44 for accessing the owner's 
virtual wallet 1 2 for an embodiment of the present inven- 
tion. A first flavor of the key is the owner's secret access 
mechanism 36. which Is necessary for the owner 4 to 
use every day for access to the virtual wallet 12. A sec- 
ond flavor 46 of the key is held by the trusted third party 
8 to give the third party access to the virtual wallet 12. 
The second flavor 46 Is, In effect, like a master key that 
gives the trusted third party B access to the contents of 
the owner's virtual wallet 1 2 once the owner 4 Is no long- 
er able to use the owner's primary access device 36. 
[0026] Fig. 5 is a flow chart which amplifies the flow 
of information shown in Fig. 1 and provides further detail 
regarding the process of escrowing and accessing the 
owner's stored data for an embodiment of the present 
invention. At SI , the owner 4 at a terminal, such as the 
owner's PC 2, establishes the virtual wallet 12. At S2, 
the owner automatically receives a new key 36 that 
gives the owner access to the wallet. At S3, starting with 
that key 36. a key escrow is automatically created with 
the trusted third party 8 by the virtual executor function- 
ality 38 within the virtual wallet 12. The virtual executor 
functionality 38 automatically assures that the key 36 is 
appropriately escrowed. When an event occurs, such 
as the death of the owner 4, the owner's personal rep- 
resentative presents the appropriate notice about the 
owner's death, such as a death certificate, to the trusted 
third party 8 at 84, and the virtual executor 38 is assured 
that the owner is actually deceased At S5, the virtual 
executor 38 uses its set of keys to make available to the 
estate all of the content that the owner 4 has protected 
by those keys. For example, if it is the owner's access 
to digital funds within the owner's virtual wallet 12, one 
of those keys will allow access to those funds. 
[0027] In an embodiment of the present invention, in 
addition to secret keys, the owner 4 may also have var- 
ious other information stored in the virtual wallet 12. 
such as the owner's will 34. The owner 4 may have 
stored, for example, an electronic copy of the owner's 
will 34 in the data archive associated with the owner's 
virtual wallet 12 as the official copy of the will. Referring 
again to Fig. 5, at the death of the owner 4, the owner's 
personal representative takes a copy of the appropriate 
death certificate and/or other appropriate documenta- 
tion to prove the authority of the personal representative 
and physically presents the documentation to the trust- 
ed third party 8. When the virtual executor 38 is assured 
of the owner's death, the virtual executor likewise uses 
its set of keys to make the owner's stored will 34 avail- 
able to the owner's estate at S5. Demonstrating and 



documenting the owner's death, as well as the authority 
of the owner's personal representative to act upon the 
owner's death, to the trusted third party 8 is a part of the 
security mechanism for an embodiment of the present 
5 invention. 

[0028] A further aspect for an embodiment of the 
present invention is a functionality within the virtual wal- 
let 12, referred to as the virtual archivist, which provides 
for access and updating of the electronic informatbn 
10 stored in the virtual wallet, for exannple, when various 
technologies associated with the stored information be- 
come outdated. Fig. 6 is a table which shows examples 
of the types of technologies which are updated by the 
virtual archivist for an embodiment of the present inven- 
ts tion. The virtual archivist 46 updates technologies, such 
as those used to sign documents 48, encrypt/decrypt 
documents 50, keys 52, read the documents them- 
selves 54. file translation utilities used to make the doc- 
uments themselves accessible 55, and certificate revo- 
20 cation lists 56, to conform to changes in technology. The 
virtual archivist 46 also updates verification and valida- 
tion technologies to ensure that keys 52, digital certifi- 
cates 57, and notary stamps 60 are valid as of the time 
stamp date 58 associated with the documents them- 
es selves. Further, in an embodiment of the present Inven- 
tion, the virtual archivist 46 takes the information with 
the outdated technology and updates it to make it com- 
patible with the latest technology, while maintaining the 
integrity of the original information. Thus, the virtual ar- 
30 chivist 46 enables all information to conform to the latest 
technological advances. 

[0029] For example, as electronic documents be- 
come, in effect, the original documents, the owner's will 
34 stored electronically in the data archive part of the 

35 owner's virtual wallet 12 becomes the owner's official 
will. The owner's will written today nnay be written in an 
application, such as Word 7.0, which runs on an Intel 
Pentium computer with an operating system, such as 
Windows NT 4.0. If the owner 4 dies at a much later time 

40 in the future, it may be unlikely that a copy of Word 7.0. 
or an Intel computer, or a copy of NT 4.0 will be readily 
available. Therefore, when the owner 4 dies in the fu- 
ture, in spite of the fact that the owner's will was signed 
and encrypted and protected and the owner has stored 

45 and archived all the keys so that the virtual executor has 
access to them, it may still not be possible to read the 
file because the access mechanisms have ceased to ex- 
ist. 

[0030] In an embodiment of the present invention, the 
so virtual archivist 46 is, in effect, a responsibility function- 
ality. As the owner's files are archived in the data archive 
associated with the owner's virtual wallet 12, the virtual 
archivist 46 maintains the stored files in a way that the 
files can be accessed over time by automatically updat- 
55 ing the stored data and the technologies associated with 
the data as the technologies change over time. The vir- 
tual archivist 46 is part of one of the functionalities within 
the virtual wallet 12 that is the personal information ar- 
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the terminal coupled to the server over a network. 

10. The method of claim 9. wherein the network further 
comprises a private network. 

5 

11 . The method of claim 9. wherein the network further 
comprises a public network. 
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chive. As the owner 4 inputs the owner*s data into the 
data archive associated with the virtual wallet 12, the 
virtual archivist 46 is automatically Informed of what the 
owner's data is and automatically formats the data, so 
the data can continue to be useful. 
[0031] Various preferred embodiments of the inven- 
tion have been described in fulfillment of the various ob- 
jects of the invention. It should be recognized that these 
embodiments are illustrative of the principles of the 
present invention. Numerous modifications and adapta- 
tions thereof will be readily apparent to those skilled in 
the art without departing from the spirit and scope of the 
present invention. Accordingly, the invention is limited 
only by the following claims. 



Claims 

1. A method for securely storing data for an owner, 
comprising: 

storing the data for the owner; 
automatically assigning a secret device to the 
owner for accessing the stored data; 
automatically escrowing the secret device con- 
ditioned on the occurrence of an event; 
receiving verification of the occurrence of the 
event; and 

accessing the stored data with the escrowed 
secret device. 

2. The method of claim 1 , wherein storing the data fur- 
ther comprises entering the data on a virtual wallet 
application for the owner. 

3. The method of claim 2, wherein entering the data 
further comprises entering the data by the owner at 
a terminal. 

4. The method of claim 3, wherein entering the data 
further comprises entering the data by the owner at 
the terminal coupled to a sen/er. 

5. The method of claim 4, wherein the terminal further 
comprises a personal computer. 

6. The method of claim 4. wherein the server further 
comprises the sender of a trusted third party 

7. The method of claim 6. wherein the trusted third par- 
ty's server further comprises a financial institution 
server. 

8. The method of claim 7, wherein the financial insti- 
tution further comprises a bank. 

9. The method of claim 4, wherein entering the data 
further comprises entering the data by the owner at 



12. The method of claim 11, wherein the public network 
10 further comprises the internet. 

13. The method of claim 2, wherein entering the data 
further comprises entering the data for the owner 
on the virtual wallet application having a virtual ex- 

15 ecutor function. 

14. The method of claim 2, wherein entering the data 
further comprises entering the data for the owner 
on the virtual wallet application having a virtual ar- 

20 chivist function. 

15. The method of claim 1 , wherein storing the data fur- 
ther comprises entering the data by the owner at a 
terminal. 

25 

16. The method of claim 15, wherein the terminal fur- 
ther comprises a personal computer. 

17. The method of claim 15, wherein entering the data 
30 further comprises entering the data by the owner at 

the terminal coupled to a server. 

18. The method of claim 17. wherein entering the data 
further comprises entering the data on a virtual wal- 

35 let application residing at least in part on the server. 

19. The method of claim 17, wherein entering the data 
further comprises entering the data on a virtual wal- 
let application residing at least in part on the termi- 

40 nal. 

20. The method of claim 1 , wherein storing the data fur- 
ther comprises storing at least one category of in- 
formation by a virtual wallet application for the own- 

45 er selected from a group of information consisting 
of identification Information, authentication informa- 
tion, certificate information, access key information, 
PIN number information, credit card account infor- 
mation, debit card information, bank account infor- 
50 mation, and other personal information. 

21 . The method of claim 1 , wherein assigning the secret 
device further comprises automatically assigning 
the secret device to the owner by a virtual wallet 

55 application. 

22. The method of claim 21 , wherein automatically as- 
signing the secret device further comprises auto- 
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matically assigning the secret device to the owner 
at a terminaL 

23. The method of claim 22, automatically assigning the 
secret device further comprises automatically as- 
signing the secret device by the virtual wallet appli- 
cation residing at least in part on a server coupled 
to the terminal. 

24. The method of claim 23, wherein the terminal fur- 
ther comprises a personal computer. 

25. The method of claim 23, wherein the sender further 
comprises the server of a tatsted third party. 

26. The method of claim 25, wherein the trusted third 
party's server further comprises a financial institu- 
tion server. 

27. The method of claim 26, wherein the financial insti- 
tution further comprises a bank. 

28. The method of claim 23, virtnerein automatically as- 
signing the secret device further comprises auto- 
matically sending information about the secret de- 
vice to the owner at the terminal coupled to the serv- 
er over a network. 

29. The method of claim 28, wherein the network further 
comprises a private network. 

30. The method of claim 28, v^rtnerein the networit further 
comprises a public network. 

31 . The method of claim 30, wherein the public network 
further comprises the internet. 

32. The method of claim 1 , wherein automatically as- 
signing the secret device further comprises auto- 
matically assigning the secret device with at least 
two access aspects. 

33. The method of claim 32. wherein automatically as- 
signing the secret device further comprises auto- 
matically assigning the secret device with an own- 
er's access aspect and a trusted third party's access 
aspect. 

34. The method of claim 33, wherein automatically as- 
signing the owner's access aspect further compris- 
es automatically sending the owner's access aspect 
to the owner. 

35. The method of claim 33, wherein automatically as- 
signing the trusted third party's access aspect fur- 
ther comprises automatically storing the trusted 
third party's access aspect. 



36. The method of claim 35, wherein automatically stor- 
ing the tnjsted third party's access aspect further 
comprises automatically storing the trusted third 
party's access aspect by a virtual wallet application 

5 for the owner 

37. The method of claim 36, wherein automatically stor- 
ing the trusted third party's access aspect further 
comprises automatically storing the trusted third 

10 party's access aspect by a virtual executor function 
of the virtual wallet application for the owner. 

38. The method of claim 37, wherein automatically stor- 
ing the trusted third party's access aspect further 

T5 comprises automatically storing the trusted third 
party's access aspect by the virtual executor func- 
tion of the virtual wallet application on a server of 
the trusted third party. 

20 39. The method of claim 38. wherein the trusted third 
party server further comprises a financial institution 
computer 

40. The method of claim 39, wherein the financial insti- 
ls tut ion further comprises a bank. 

41. The method of claim 1, wherein automatically es- 
crowing the secret device further comprises auto- 
matically escrowing a trusted third-party's access 

30 aspect of the secret device for the owner 

42. The method of claim 41, wherein automatically es- 
crowing the trusted third party's access aspect fur- 
ther comprises automatically storing the trusted 

35 third party's access aspect by a virtual wallet appli- 
cation for the owner 

43. The method of claim 42, wherein automatically stor- 
ing the trusted third party's access aspect further 

40 comprises automatically storing the trusted third 
party's access aspect by a virtual executor function 
of the virtual wallet. 

44. The method of claim 41 , wherein automatically es- 
45 crowing the trusted third party's access aspect fur- 
ther comprises automatically storing the trusted 
third party's access aspect conditioned on the oc- 
currence of the event affecting the owner 

so 45. The method of claim 44, wherein the event affecting 
the owner further comprises the owner's death. 

46. The method of claim 44, wherein the event affecting 
the owner further comprises the owner's incompe- 

55 tence. 

47. The method of claim 1 . wherein automatically es- 
crowing the secret device further comprises auto- 
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matically escrowing secret access inforrriation for 
the owner. 

48. The method of claim 47, wherein automatically es- 
crowing secret access infomrration further compris- 
es automatically storing at least one type of secret 
access information selected from a group of secret 
access informatbn consisting of identification infor- 
mation, authentication information, certificate infor- 
mation, access key infomnation, PIN number infor- 
mation, and password information. 

49. The method of claim 1. wherein automatically es- 
crowing the secret device further comprises auto- 
matically escrowing decryption infrastructure forthe 
owner. 

50. The method of claim 49. wherein automatically es- 
crowing decryption infrastructure further comprises 
automatically storing at least one decryption infra- 
structure selected from a group of decryption infra- 
structure consisting of public key cryptography in- 
frastructure, electronic document infrastructure, 
digital signature infrastructure, user name infra- 
structure, password infrastructure, fingerprint scan- 
ner infrastructure, and secret key infrastructure. 

51. The method of claim 1 , wherein receiving the veri- 
fication further comprises receiving the verification 
by a trusted third party for the owner. 

52. The method of claim 1 , wherein receiving the veri- 
fication further comprises receiving the verification 
from a personal representative of the owner 

53. The method of claim 1. wherein receiving the veri- 
fication further comprises receiving the verification 
of an event affecting the owner. 

54. The method of claim 53. wherein the event affecting 
the owner further comprises the owner's death. 

55. The method of claim 53, wherein the event affecting 
the owner further comprises the owner's incompe- 
tence. 

56. The method of claim 1. wherein receiving the veri- 
fication further comprises entering the verification 
of the occurrence of the event on a virtual wallet ap- 
plication of the owner. 

57. The method of claim 56, wherein entering the veri- 
fication further comprises entering the verification 
on a virtual executor function of the virtual wallet ap- 
plication. 

58. The method of claim 57, wherein entering the veri- 
fication further comprises entering the verification 



on the virtual executor function of the virtual wallet 
application on a server. 

59. The method of claim 58, wherein entering the veri- 
5 fication further comprises entering the verification 

on the virtual executor function of the virtual wallet 
application on the server of a trusted third party. 

60. The method of claim 59, wherein the trusted third 
10 party further comprises a financial institution. 

61. The method of claim 60, wherein the financial insti- 
tution further comprises a bank. 

IS 62. The method of claim 1. wherein accessing the 
stored data further comprises accessing the data 
stored in a virtual wallet application of the owner 

63. The method of claim 62, wherein accessing the 
20 stored data further comprises accessing the data 

stored in a virtual executor function of the virtual 
wallet application on a sen/er. 

64. The method of claim 63, wherein accessing the 
25 stored data further comprises accessing the data 

stored in the virtual executor function of the virtual 
wallet application on the server of a trusted third 
party. 

30 65. The method of claim 64, wherein the trusted third 
party further comprises a financial institution. 

66. The method of claim 65, wherein the financial insti- 
tution further comprises a bank. 

35 

67. The method of claim 1, wherein accessing the 
stored data further comprises accessing the data 
using a trusted third party's access aspect of the 
secret device. 

40 

68. The method of claim 67, wherein accessing the data 
further comprises accessing the data using the 
trusted third party's access aspect of the secret de- 
vice stored by a virtual executor function of a virtual 

45 wallet application. 

69. The method of claim 68, wherein accessing the data 
further comprises accessing the data using the 
trusted third party's access aspect of the secret de- 

50 vice stored by the virtual executor function of the 
virtual wallet application on a sender of the trusted 
third party 

70. The method of claim 69, wherein the trusted third 
55 party further comprises a financial institution. 

71. The method of claim 70. wherein the financial insti- 
tution further comprises a bank. 
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72. The method of claim 1 . further comprising automat- 
ically updating technology aspects of the stored da- 
ta. 

73. The method of claim 72. wherein autonnatically up- 
dating the technology aspects further comprises 
automatically updating technology aspects of the 
data by a virtual archivist function of a virtual wallet 
application. 

74. The method of claim 73, wherein autonnatically up- 
dating the technology aspects by the virtual archi- 
vist function further comprises automatically updat- 
ing the technology aspects by the virtual archivist 
function of the virtual wallet application on a server. 

75. The method of claim 74. wherein automatically up- 
dating the technology aspects further comprises 
automatically updating the technology aspects by 
the virtual archivist function of the virtual wallet ap- 
plication on the server of a trusted third party. 

76. The method of claim 75, wherein the trusted third 
party further comprises a financial Institution. 

77. The method of claim 76. wherein the financial insti- 
tution further comprises a bank. 

78. The method of claim 1. wherein automatically up- 
dating the technology aspects further comprises 
automatically updating at least one technology as- 
pect of the data selected from a group of technology 
aspects consisting of technology related to signing 
a document, encryption technology technology re- 
lated to a key for signing a document, technology 
related to a document itself, technology related to 
a certificate revocation list, technology related to a 
time stamp, and technology related to a notary 
stamp. 

79. The method of claim 1 , wherein storing the data fur- 
ther comprises receiving the data from another par- 
ty by a virtual wallet application for the owner 

80. The method of claim 79. wherein receiving the data 
further comprises receiving the data by the virtual 
wallet application for the owner by electronic mail. 

81. A system for securely storing data for an owner, 
comprising: 

means for storing the data for the owner; 
means associated with the storing means for 
automatically assigning a secret device to the 
owner for accessing the stored data; 
means associated with the storing means for 
automatically escrowing the secret device con- 
ditioned upon the occurrence of an event; 



means associated with the storing means for 
receiving verification of the occurrence of the 
event; and 

means associated with the storing means for 
5 accessing the stored data with the escrowed 

secret device. 

82. The system of claim 81 , wherein the means for stor- 
ing the data further comprises a server. 

JO 

83. The system of claim 82. wherein the server further 
comprises the server of a trusted third party. 

84. The system of claim 83, whereirn the means for stor- 
is ing the data further comprises a terminal coupled to 

the server. 

85. The system of claim 84, wherein the means for stor- 
ing the data further comprises a network coupling 

20 the terminal to the server. 

86. The system of claim 81 , wherein the means for au- 
tomatically assigning the secret device further com- 
prises a server. 

25 

87. The system of claim 86. wherein the server further 
comprises the server of a trusted third party. 

88. The system of claim 81 , wherein the means for au- 
30 tomatically assigning the secret device further com- 
prises the server coupled to a terminal over a net- 
work. 

89. The system of claim 81 , wherein the means for re- 
35 ceiving the verlflcatran further comprises a server. 

90. The system of claim 89, wherein the server further 
comprises the server of a trusted third party. 

40 91 . The system of claim 81 , wherein the means for ac- 
cessing the stored data further comprises a server 

92. The system of claim 91 , wherein the server further 
comprises the server of a trusted third party. 

45 
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